Catching wireless hackers in the act

Sneaky US company uses 'honey-trap' WLAN to study hacking techniques

Sneaky US company uses 'honey-trap' WLAN to study hacking techniques

Hackers who have been using a wireless network somewhere in America to access the internet for free this summer may find themselves the object of a scientific study - but fortunately for them they will be spared any criminal proceedings. A heavily monitored wireless network was quietly set up in June to lure hackers and keep track of attacks. Science Applications International Corp. (SAIC) created the network to study the methods of wireless vandals. It is the first wireless version of a so-called honeynet, networks of servers designed to lure in hackers and then monitor their actions. "It is important to see how the bad guys are breaking into systems using not just wired networks, but wireless networks as well," said Lance Spitzner, founder of the Honeynet Project, the group that first created honeynets. Wireless networks are becoming increasingly popular for their ability to let people connect to the internet from anywhere close to an access point. However, the technology's security has been widely criticised, with the US cybersecurity czar calling it one of the main reasons the nation's infrastructure is insecure. While the SAIC, a research and engineering company, has tried to keep its 10-week old project hush-hush, details have leaked out. The so-called Wireless Internet Security Experiment, or WISE, aims to "develop effective information security, intrusion detection, and incident response, and forensic methodologies for wireless networks," according to the project's web page. The first test network was set up in mid-June in a major metropolitan area, and logs all traffic for later analysis, said a source familiar with the experiment. Anyone can connect to the wireless network, but only users who break the law would be able to get out to the internet. "(WISE) has a password protected gateway that blocks network access," said Spitzner. "If they are good guys then they say, 'Ah oh,' and get off, while the malicious users will exploit a hole in the gateway." However, SAIC has no plans to press charges against anyone using the network to get to the internet; the project is for research only. Neither Spitzner nor SAIC would reveal in which city the wireless honeynet had been placed. SAIC spokesman Ron Zollars would only talk about the project in general terms. "It's purely an independent R&D project, and all funding is currently only SAIC dollars," he said. He also claimed the project wasn't yet up and running, despite statements to the contrary by Spitzner and other sources. "SAIC is a government contractor; they do a lot of military work, so they generally get nervous when one of their projects gets a lot of press," said a source familiar with the experiment, who asked to remain anonymous. A report on the findings is expected to be released to the public late this year. Robert Lemos writes for News.com